Cc

1. In Login.html:
2.  
3. <html>
4. <head>
5. <meta charset="utf-8">
6. <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1">
7. <title>Login Form</title>
8. </head>
9. <body>
10. <section class="container">
11. <div class="login">
12. <h1>Login</h1>
13. <form method="post" action="login.php">
14. <p><input type="text" name="username" value="" placeholder="Username"></p>
15. <p><input type="password" name="password" value="" placeholder="Password"></p>
16.  
17. <p class="submit"><input type="submit" name="commit" value="Login"></p>
18. </form>
19. </div>
20. </body>
21. </html>
22. In Login.php:
23.  
24. <?php
25.  
26. $host="localhost"; // Host name
27. $username=""; // Mysql username
28. $password=""; // Mysql password
29. $db_name=""; // Database name
30. $tbl_name="members"; // Table name
31.  
32. // Connect to server and select databse.
33. mysql_connect("$host", "$username", "$password")or die("cannot connect");
34. mysql_select_db("$db_name")or die("cannot select DB");
35.  
36. // username and password sent from form
37. $username=$_POST['username'];
38. $password=$_POST['password'];
39.  
40. // To protect MySQL injection (more detail about MySQL injection)
41. $username = stripslashes($username);
42. $password = stripslashes($password);
43. $username = mysql_real_escape_string($username);
44. $password = mysql_real_escape_string($password);
45. $sql="SELECT * FROM $tbl_name WHERE username='$username' and password='$password'";
46. $result=mysql_query($sql);
47.  
48. // Mysql_num_row is counting table row
49. $count=mysql_num_rows($result);
50.  
51. // If result matched $username and $password, table row must be 1 row
52. if($count==1){
53. session_start();
54. $_SESSION['loggedin'] = true;
55. $_SESSION['username'] = $username;
56. }
57. In Member.php:
58.  
59. session_start();
60. if (isset($_SESSION['loggedin']) && $_SESSION['loggedin'] == true) {
61. echo "Welcome to the member's area, " . $_SESSION['username'] . "!";
62. } else {
63. echo "Please log in first to see this page.";
64. }
65. In MYSQL:
66.  
67. CREATE TABLE `members` (
68. `id` int(4) NOT NULL auto_increment,
69. `username` varchar(65) NOT NULL default '',
70. `password` varchar(65) NOT NULL default '',
71. PRIMARY KEY (`id`)
72. ) TYPE=MyISAM AUTO_INCREMENT=2 ;
73. In Register.html:
74.  
75. <html>
76. <head>
77. <title>Sign-Up</title>
78. </head>
79. <body id="body-color">
80. <div id="Sign-Up">
81. <fieldset style="width:30%"><legend>Registration Form</legend>
82. <table border="0">
83. <form method="POST" action="register.php">
84. <tr>
85. <td>UserName</td><td> <input type="text" name="username"></td>
86. </tr>
87. <tr>
88. <td>Password</td><td> <input type="password" name="password"></td>
89. </tr>
90. <tr>
91. <td><input id="button" type="submit" name="submit" value="Sign-Up"></td>
92. </tr>
93. </form>
94. </table>
95. </fieldset>
96. </div>
97. </body>
98. </html>
99. In Register.php:
100.  
101. <?php
102.  
103. define('DB_HOST', '');
104. define('DB_NAME', '');
105. define('DB_USER','');
106. define('DB_PASSWORD','');
107.  
108. $con=mysql_connect(DB_HOST,DB_USER,DB_PASSWORD) or die("Failed to connect to MySQL: " . mysql_error());
109. $db=mysql_select_db(DB_NAME,$con) or die("Failed to connect to MySQL: " . mysql_error());
110.  
111.  
112.  
113. $userName = $_POST['username'];
114. $password = $_POST['password'];
115. $query = "INSERT INTO members (username,password) VALUES ('$userName','$password')";
116. $data = mysql_query ($query)or die(mysql_error());
117. if($data)
118. {
119. echo "YOUR REGISTRATION IS COMPLETED...";
120. }
121. else
122. {
123. echo "Unknown Error!"
124. }
125. share improve this answer